On Wed, Feb 20, 2002 at 05:43:11PM -0500, Paul Robertson wrote:
> An interface needs to be in promiscuous mode to accept multicast traffic,
Nope, this is only true for old ethernt drives. Most modern ethernet drivers
have special registeres where you can store a list or a hash of multi cast
groups you are interested in. The driver handles the choice itself. If it
switches on multicast because of membership in too many multicast groups,
this will (afaik) not shown in netstat.
> Works just fine for me- the interface is no longer in promiscuous mode,
> and therefore can't accept multicast traffic.
Actually besides the fact that it could, there is also some issues with
recent 2.4 kernels. The promisc flag is not always shown and it can't be
turned off easyly with ifconfig.
You can use "ip add" to see if the promisc flag is set, correct. To turn
this off, you have to kill all applications which are subscribed to packet
socket. Like tcpdump, arpwatch, snort, ...
Greetings
Bernd
--
(OO) -- [EMAIL PROTECTED] --
( .. ) ecki@{inka.de,linux.de,debian.org} http://home.pages.de/~eckes/
o--o *plush* 2048/93600EFD eckes@irc +497257930613 BE5-RIPE
(O____O) When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl!
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
